Evident.io Improves Cloud Security with Attribution and Compliance Reporting
November 18, 2016
Cloud technology has increased the accessibility of IT solutions to a wider customer base. Small businesses now have infinite scalability and the elasticity to grow as needed with infrastructure, software and platforms they can obtain at affordable prices. While there are many clear benefits cloud provides, there are also challenges, and one of them happens to be security. This is an issue that affects real and virtual digital worlds, but as more organization migrate to the cloud, service providers with robust and proven security systems are differentiating themselves from their competition.
Evident.io, provider of security and compliance automation for public cloud, just announced it has added new risk attribution and compliance features in the Evident Security Platform (ESP) to help organizations using public clouds identify inside threats and provide increased visibility of security in their cloud infrastructure.
The company's ESP platform was initially designed to enable organizations of any size to proactively manage cloud security risk in order to improve overall security and minimize attack surface. It is an agent-less platform built on Amazon Web Services (News - Alert) APIs that can be deployed in minutes no matter how complex the environment.
The additions to ESP will address even more security challenges by increasing the visibility and letting organizations see who, how, and where an alert was generated by correlating AWS CloudTrail data.
The risk user attribution leverages ESPs single-pane-of-glass view across all AWS accounts, services and regions, along with risk user attribution so teams can focus on higher value threats and respond more quickly. By simplifying access to user attribution data, security teams can identify individuals within organizations that need more training on security best practices.
This information can be used to identify threats posed by bad actors that have breached the infrastructure as well as insider threats so quarantines can be applied right away. According to Evident.io, cloud environments become vulnerable for less time when user attribution is quickly identified about who is creating cloud infrastructure security risks with a single source of truth.
“When an organization's infrastructure sees hundreds or even thousands of changes taking place in the cloud on a daily basis, identifying user attribution can be nearly impossible. Now, with user attribution, you can improve security skills across your team so every resource can now operate as well as your most skilled security resources,” said Evident.io CEO and Co-founder, Tim Prendergast.
The compliance reporting provides the entire AWS environment, including all services, all regions, and all accounts with a real-time compliance assessment, with complete security and continuous compliance monitoring.
The technology was developed with Evident.io in conjunction with Amazon Web Services, the Center for Internet Security (CIS) and other organizations to develop the first CIS AWS Foundations Benchmark. The benchmark, which was released earlier this year, provides organizations an implementation and assessment procedure for security best practices for AWS.
Edited by Alicia Young
Article comments powered by